General

  • Target

    49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe

  • Size

    206KB

  • Sample

    240605-jnmbfaah46

  • MD5

    49a987fc6b3f7f5d1e9db05f3e2a4250

  • SHA1

    0dfc6804f1db3dbd390c3689adbc0eac6c96e006

  • SHA256

    50a33c105b3addbd2444dfa2c176ac686bc41bc92e1a2e3866bab1c262088033

  • SHA512

    52ef5f4c787cd12e55e87e189971632a48d1113736b44dd459fa0f855aeb92edde0e74102babad06b4ff3f84f495a69de94273242dbfdd21482b76d54434a470

  • SSDEEP

    3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLp:5vEN2U+T6i5LirrllHy4HUcMQY6Kp

Score
10/10

Malware Config

Targets

    • Target

      49a987fc6b3f7f5d1e9db05f3e2a4250_NeikiAnalytics.exe

    • Size

      206KB

    • MD5

      49a987fc6b3f7f5d1e9db05f3e2a4250

    • SHA1

      0dfc6804f1db3dbd390c3689adbc0eac6c96e006

    • SHA256

      50a33c105b3addbd2444dfa2c176ac686bc41bc92e1a2e3866bab1c262088033

    • SHA512

      52ef5f4c787cd12e55e87e189971632a48d1113736b44dd459fa0f855aeb92edde0e74102babad06b4ff3f84f495a69de94273242dbfdd21482b76d54434a470

    • SSDEEP

      3072:5vEfVUzSLhIVbV6i5LirrlZrHyrUHUckoMQ2RN6unLp:5vEN2U+T6i5LirrllHy4HUcMQY6Kp

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks